![]() Additionally the variable names were randomly generated, which made the effort to manually follow the program flow even harder.įollowing the trend to release advanced virus creation kits, the CPCK kit for W97M/Class-based macro viruses was released by the same author. Already this kit contained functionality to add "noise" data to the created viruses, so that the analysis of these viruses became harder. Later versions of the VMPCK kit were also compatible with Word97 service release 1.0. However, in 1998, the infamous virus programmer Vicodines introduced the first W97M/Class virus and the VMPCK kit (version 1.0a - 1.0d), which was used in many cases (VMPCK 1 & 2 families.) The VMPCK kit can be seen as one of the first advanced virus construction kits for Visual Basic for Applications (VBA.) In these first years, only very basic creation kits with limited functionality were available. The first virus generation kits for binary MSDOS viruses appeared in the early 90s. There is a long history of virus creation kits, although the first advanced creations kits for macro/script viruses did not appear until the end of the 1990s. This discussion will also explain the attack points by which heuristic engines can detect all possible generations of the worms. With this in mind, this article will analyze the VBSWG kit itself (version 1.50b) and will discuss its functionality in detail. Given the prominence of this kit, and its related worms, it would be useful for security and virus professionals to better understand it. These kits make writing a virus a simple, straightforward and unskilled task. These worms are generated by the VBSWG kit, one of the many virus-generating kits that are easily available on the Internet. The Homepage and the Anna Kournikova worms are two high-profile examples of the family of visual basic script worms. ![]() By Markus Schmall Building Anna Kournikova: An Analysis of the VBSWG Worm Kit ![]()
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |